15 matches found
RHCOS 4 : OpenShift Container Platform 4.11.53 (RHSA-2023:6274)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6274 advisory. - ovn: service monitor MAC flow is not rate limited CVE-2023-3153 Note that Nessus has not tested for this issue but has instead relied only ...
CVE-2023-3153
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
Design/Logic Flaw
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153
Open Virtual Network (ovn/openvswitch) CVE-2023-3153 is reported as a denial-of-service risk caused by the service monitor MAC flow not being rate-limited. Public advisories from SUSE/OpenVAS indicate the issue affects openvswitch and openvswitch3, with remediation via updates to openvswitch/open...
CVE-2023-3153
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153 Service monitor mac flow is not rate limited
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153 Service monitor mac flow is not rate limited
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
CVE-2023-3153
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured...
Cisco IOS SIP实现多个拒绝服务和远程代码执行漏洞
BUGTRAQ ID: 38935,38929,38933 CVE ID: CVE-2010-0579,CVE-2010-0580,CVE-2010-0581 Cisco IOS是思科网络设备所使用的互联网操作系统。 Cisco IOS Software的SIP实现中存在多个漏洞,可能允许远程攻击者导致设备重载或执行任意代码。当运行Cisco IOS Software的设备处理畸形SIP消息时可以触发这些漏洞。 在SIP运行在TCP传输的情况下,必须完成三重握手才可以利用这些漏洞。 Cisco IOS 12.4 Cisco IOS 12.3 临时解决方法:...
Net-SNMP远程绕过认证漏洞
BUGTRAQ ID: 29623 CVECAN ID: CVE-2008-0960 Net-SNMP是一个免费的、开放源码的SNMP实现,以前称为UCD-SNMP。 Net-SNMP处理认证的实现上存在漏洞,远程攻击者可能利用此漏洞绕过认证获取SNMP对象的访问。...
Cisco IOS SIP报文处理远程拒绝服务漏洞
Cisco IOS是Cisco网络设备所使用的操作系统。 运行IOS且支持语音通讯的Cisco设备默认下启用了SIP,但可能没有正确配置。如果向这样的设备发送特制的SIP报文的话,就可能导致设备重启。 Cisco IOS 12.4 Cisco IOS 12.3 临时解决方法: 关闭SIP处理 Enter configuration commands, one per line. End with CNTL/Z. Routerconfigsip-ua Routerconfig-sip-uano transport udp Routerconfig-sip-uano transport tc...
Cisco IOS畸形IP选项远程拒绝服务及代码执行漏洞
Cisco IOS是Cisco设备所使用的操作系统。 Cisco IOS在处理特定畸形的IP报文时存在漏洞,远程攻击者可能利用此漏洞导致设备无法正常工作或在设备上执行任意指令。 如果满足了所有以下3个条件的话: 1. 报文包含有特制的IP选择 2. 报文为以下协议之一: ICMP - Echo Type 8 - 'ping' ICMP - Timestamp Type 13 ICMP - Information Request Type 15 ICMP - Address Mask Request Type 17 PIMv2 - IP protocol 103 PGM - IP...
Cisco IOS特制TCP报文远程拒绝服务漏洞
Cisco IOS是Cisco设备所使用的操作系统。 Cisco IOS在处理特定畸形的TCP报文时存在漏洞,远程攻击者可能利用此漏洞对设备执行拒绝服务攻击,导致设备耗尽所有内存无法正常工作。 如果将Cisco IOS设备配置为接收TCP报文的话,则发送给Cisco IOS设备物理或虚拟接口IPv4地址的特制报文就可能导致泄漏少量的内存。这种内存泄漏可能造成耗尽内存资源,降低系统的性能。 请注意攻击者无需完成TCP三重握手就可以触发这个漏洞,因此伪造源址的TCP报文也可以完成攻击。这个漏洞仅适用于目标为Cisco IOS设备的通讯,穿越Cisco IOS设备的通讯不会触发这个漏洞。...